Please don't click on any links or attachments, or reply to the email. We recommend you delete the email. If you have already clicked on a link or downloaded something from the email:
Below is a statement from JumpCut explaning what happened.
Update to our community: Our email service provider was hacked the morning of April 14th.
What happened:
Starting at 12:12 pm Pacific time, our entire email list received an email from support@jumpcut.com with the title, “Invoice 1147 from Jumpcut, Inc.” This email was sent not just to “active” email addresses (people who have clicked on any Jumpcut email in the last 4 months), but every single email address on our list, even those who we marked as do not email.
The body of the email was a receipt for a $470 invoice.
This invoice is not real. We did not send it, and you will not be charged anything. We apologize for the inconvenience and alarm this has caused you.
A malicious actor accessed our Maropost account (our email sender) to send out this email. Because Maropost is third-party software, it is not connected to our payment platforms or course platforms, and no payment information was compromised.
The only thing you need to do is ignore the email. If you clicked on the links within the email but did nothing else, you are safe. If you clicked on the link, downloaded the files to your computer, and opened those files, we suggest running a virus scanner to make sure your device is safe.
It seems like the malicious actor was trying to get people to download and run a vbs file. In the case that you opened the file, we highly recommend you run an antivirus software to get rid of it.
To repeat: if you didn't open any downloaded files, it seems like you should be fine. Though running an antivirus software wouldn't hurt.
How did this happen?
We have multiple users at our company who access Maropost to send emails to our audience. One of our users had her phone compromised by someone halfway around the world, and the malicious actor sent out the invoice email within two hours of access.
It's depressing that somebody would try to do this during a worldwide pandemic…but unfortunately, there's always going to be people out there that try to take advantage of others during shitty circumstances.
It's actually not that difficult to send emails that LOOK legit (they're using the correct domain).
Why am I on your newsletter?
We’ve been receiving questions about how you’ve gotten onto our newsletter. It's very likely that you signed up through one of our ads, which we mainly show on YouTube and Facebook. We have never and will never buy emails from anybody.
If you would like to unsubscribe, just search for "Jumpcut" in your email, and at the bottom of any of our emails, there will be a link that says "unsubscribe." Needless to say, this will not work on the hacked email as it did not come from us.
I clicked on the link in the fake invoice email! What should I do?
If you clicked on the link, and that’s all that happened, you should be fine. If you clicked on the link and saw a file download onto your computer, but deleted that file, you should be fine. If you opened that file on your computer, please take the necessary precaution and run a virus scanner immediately.
I still have questions.
Because of the extraordinarily high amount of responses we received at support@jumpcut.com, our email service has been throttled. We’ve created a new account to deal with all requests from this issue.
Please email support@jumpcut.zendesk.com with any outstanding concerns and questions that you have.
Note: we try to get back to you within the day, but because of the influx of emails that we’ve received, responses right now might take longer than usual. Please know: we take your privacy and our security very seriously and will make sure we do everything we can to prevent this from happening in the future. We are extremely sorry this happened, especially during such a stressful time, and want to emphasize that you will NOT be charged $470, and your payment information was NOT compromised.
Again, please email support@jumpcut.zendesk.com with any question you may have. Thank you.
Kong, CEO of Jumpcut
Jumpcut, with headquartered in Los Angeles, CA, is a company that creates captivating online courses about entrepreneurship. Jumpcut is where the next generation of entrepreneurs will be developed. Their online courses help people develop the skills they need in order to turn their passions into a successful business.
Intuit Inc. is an American business and financial software company that develops and sells financial, accounting, and tax preparation software and related services for small businesses, accountants, and individuals. The company is headquartered in Mountain View, California.